System for and method of protecting data in firmware modules of embedded systems
First Claim
1. A method of protecting data in firmware modules of embedded systems from external access, the method comprising:
- establishing a private data section and a public code section in firmware, the public code section being configured to provide controlled access to data contained in the private data section by external functions; and
providing access to data contained in the private data section via the public code section to external functions.
1 Assignment
0 Petitions
Accused Products
Abstract
The privacy of data in firmware modules of embedded systems can be obtained by a method and system that restrict access to local variables even where there are limited (or no) restrictions imposed by the program assembler. The technique used by the method and system can use a private data section, having data to be protected, and a public code section, allowing controlled access to data in the private data section. Access to functions in the public code section is allowed to external code. In contrast, data in the private data section is protected and cannot be accessed directly. The only access to such data is provided by public functions defined in a code section.
14 Citations
16 Claims
-
1. A method of protecting data in firmware modules of embedded systems from external access, the method comprising:
-
establishing a private data section and a public code section in firmware, the public code section being configured to provide controlled access to data contained in the private data section by external functions; and
providing access to data contained in the private data section via the public code section to external functions. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system that protects data in firmware modules of embedded systems, the system comprising:
-
a private data section in firmware that maintains data; and
a public code section in firmware that includes dedicated functions which allow limited access to data contained in the private data section by external functions. - View Dependent Claims (8, 9, 10)
-
-
11. A processing system comprising:
-
a central processing unit (CPU); and
a storage device coupled to a processor and having stored there information for configuring the CPU to;
store data in a private data section of firmware; and
permit access to stored data in the private data section by functions defined in a public code section of firmware. - View Dependent Claims (12, 13, 14, 15, 16)
-
Specification